Virtual payment card fraud detection

ABSTRACT

Like many credit card payments, virtual card payments are subject to fraudulent transactions. To lower this possibility, data collected from a settlement transaction is stored including a merchant category code, a tax identification number, a merchant identification and an IP address of the processing terminal. Subsequent payments from the same payor to the same payee are verified against the previous settlement transaction data to minimize the possibility of fraud.

PRIORITY CLAIM

This application is a continuation of and claims priority to U.S.non-provisional application Ser. No. 15/087,374 filed Mar. 31, 2016entitled “Virtual Card Fraud Detection,” which is a continuation-in-partof and claims priority to U.S. non-provisional application Ser. No.14/840,783 filed Aug. 31, 2015 entitled “Virtual Card Fraud Detection,”which claims priority to U.S. Provisional Patent Application Ser. No.62/044,234 filed Aug. 30, 2014.

BACKGROUND OF THE INVENTION 1. Field of the Invention

This invention relates to payment processing. More specifically, itrelates to fraud detection for repeated virtual payment cardtransactions between the same payor and payee.

2. Brief Description of the Related Art

Adjudication, payment and reconciliation of service provider claimsagainst insurance carriers (particularly in the healthcare, travel andwarranty industries) consumes substantial time and resources. Thirdparty administrators (herein “TPAs”), insurance companies, and largeself-funded corporations (herein “Payers”) adjudicate claims, comparethem to a benefit plan and make the decision to write checks in paymentfor the claims. Currently, many payers are required to print checks andexplanation of benefit (EOB) forms for delivery to the healthcareproviders. The EOB lists the amount the healthcare provider billed thePayer's company and the amount the Payer's company paid on the claim. Itmay also list the contractual discount amount and the patientresponsibility. If the claim is denied, the EOB will explain the reasonfor denial. EOB, explanation of payment (EOP) and remittance advice aresynonymous for the purposes of this specification.

In an effort to streamline this process, Applicant developed a methoddescribed in U.S. Pat. No. 7,792,686, (succeeded by RE43904 and RE44748)the specification of which is incorporated herein by reference. The '686patent discloses a method to deploy a virtual payment card to settlemedical service claims. Since there is a one-to-one relationship betweenthe virtual payment card and the specific claim, reconciling the paymentis made substantially more efficient.

Virtual payment cards have a number of security advantages. Virtualpayment cards generate a unique credit card number to settle a specifictransaction. Also referred to as “single-use credit cards” or“one-time-use credit cards”, virtual payment cards offer businesses ahighly controlled and secure way of making payments.

A single-use virtual payment card number is issued for a specifictransaction or claim, similar to what traditionally was only paid by acheck. Once the transaction is processed, the virtual payment cardnumber becomes invalid until it is “recycled” sometime later for anotherpayment. However, a recycled virtual payment card number will likely bemated with a new expiration date and security code as well. Virtual cardpayments are processed just like traditional credit card payments andare highly convenient for the payee.

For payment of claims (medical, warranty, travel and the like) theworkflow often involves a payment processor that directs the delivery ofvirtual payment cards to payees on a regular basis. One such paymentprocessor operates under the brand STONEEAGLE. A payment processor likeSTONEEAGLE may process hundreds of millions of dollars in payments usingvirtual payment cards with a substantial amount of repeat payments tothe same payees (e.g., health care providers).

Virtual card payments to payees are tightly control, highly secure andpromptly reconciled. Accordingly, opportunities for fraud are limited infrequency as well as scope (e.g., virtual cards are unique for atransaction and further limited in authorized amounts). However, it ispossible that some fraud could occur, most likely internal to thepayee's business operation.

For example, a payment processor may send a virtual payment card for a$1,000 authorized claim payment to a health care provider office. Anemployee within that office intercepts the virtual payment cardinformation and using a portable card terminal, processes the virtualpayment card transaction for his own benefit thereby stealing thepayment intended for his employer. The employee would have a difficulttime keeping the theft secret for long as the details of the transactionincluding his merchant account, depositing bank, IP address of hisportable device and other meta data of the transaction would be capturedand stored.

Nevertheless, as virtual card payments have become more ubiquitous inbusiness-to-business commerce, there is a need for additional securitycontrols to reduce opportunities for theft.

SUMMARY OF THE INVENTION

The present invention includes a method of fraud detection forrepetitive virtual payment card transactions to a payee from a payorsuch as is common in the health care industry. A unique payeeidentification is established by the payor based on the taxidentification number (TIN) of the payee. This could be a directcorrelation, a hash or other unique derivation of the TIN. While otherunique identity values are possible under this invention the paymentprocessor (the entity making repetitive payments) is almost always privyto the TIN which therefore becomes a useful identifier.

A first virtual card payment is sent to a payee having a paymentterminal through which card payments are processed. Virtual paymentcards are generated electronically and are not reduced to a physicalplastic card. The payment terminal is connected to the Internet whichthen connects it to a payment acquirer, card processing network and thelike. The virtual card payment is processed by the payee through thepayment terminal thereby completing a settlement transaction. Becausethe virtual card does not have a magnetic strip, the card account numberand other data can be manually keyed in into the terminal.

The settlement transaction data is sent to an acquirer which collects anarray of data from the settlement transaction including a merchantcategory code, an IP address from the payee's terminal connection to theInternet and the tax identification number of the payee. This array ofdata is stored in a database in association with the unique payeeidentification. Subsequent payment processing attempts by payee areeither approved or denied by matching the merchant category code, taxidentification number and IP address of the subsequent attempt againstthe stored array of data.

An embodiment of the invention includes a computer-implemented method ofpaying an administrator-approved claim through a payment processor by avirtual payment card account over a network. The payment processorreceives one or more data files into a payment processor computingsystem operating on a computing device. The data files are sent from aremote administrator computer to pay an adjudicated claim in anauthorized amount to a designated payee. The one or more data files mayinclude remittance advice for the claim. The transfer of the data filesmay be by FTP, web service, database query or the like. The computingdevice would typically be a CPU server running a server operating systemsuch as those under the brands LINUX, SOLARIS, WINDOWS SERVER, MAC OS XSERVER or the like. A payment processor computing system may be one ormore individual computing devices, a plurality of them communicativelycoupled through a network connection. A computing device is interpretedbroadly as one or more individual instances of an operating systemworking collectively together through network connections, eitherlocally or remotely.

The payment processor computing system requests the virtual payment cardaccount over a network connection to a card issuing application in afirst amount to the payee. The virtual payment card account having anaccount number, an expiration date and a CVV code. Virtual payment cardshave a unique primary account number to settle a specific transaction.

The virtual card account number, expiration date, CVV code andassociated remittance advice for the claim is sent from the paymentprocessor computing system to the payee of the claim. This may be doneby hardcopy mailing, fax, or electronic transmission over the Internet.The payee electronically processes the virtual payment card data on apayment card terminal for the claim in an amount equal to the authorizedamount for the claim.

The payment processor computing system receives notification of theprocessed payment through a network connection and matches it to theclaim thereby confirming payment was processed by the payee in theamount authorized by the administrator.

The payment processor stores data values from the transaction which mayinclude a merchant category code, an IP address from the payee'sterminal connection to the Internet and the tax identification number ofthe payee. The payment processor is now in a unique position, havingthat data from a verified transaction, to check subsequent virtualpayment card transactions to the same payee because virtually all thecore data parameters (except and amount and date) should be the same.

BRIEF DESCRIPTION OF THE DRAWINGS

For a fuller understanding of the invention, reference should be made tothe following detailed description, taken in connection with theaccompanying drawings, in which:

FIG. 1 is a diagrammatic view of an embodiment of the invention.

FIG. 2 is a diagrammatic view of an embodiment of the invention showingmismatching MMC values leading to a denial of an authorization attempt.

FIG. 3 is a diagrammatic view of a payee database populated by a paymentprocessor with exemplary values for information captured in cardauthorization communications.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT

The present invention relates to fraud detection in the virtual cardpayment industry. For example, virtual card payments are frequently madeto health care providers on behalf of third party administrators thatadjudicate claims. These are regular, reoccurring payments made byvirtual payment cards that are chargeable through a merchant terminal.

In an embodiment of the invention, a payor sends a payment processor apayee identification code which may be the tax identification number(TIN) of the payee. The TIN is stored with the payee's other informationfor future reference in a database. The credit card terminal throughwhich the payee processes the virtual card payment is connected to theInternet and inherently has an IP address which is an array of fourintegers under Version 4 of the Internet addressing protocol. Theterminal will also have a Merchant Category Code (MMC) which defines thetype of business and a Merchant Identification (MID) that is associatedwith the payee's credit card terminal account. This data (IP address,MMC, MID, TIN) is collected from the settlement transaction by theacquirer and returned to the payment processor. This acquirer-collecteddata is added to the database in association with the payee ID. The nexttime the payor makes payment to payee the processor can validate thatthe same merchant used the card from the same location by analyzing thesubsequent set of settlement data returned.

In FIG. 1, remote administrator computer 100 sends data file 110 topayment processor computing device 120. Data file 110 includes payeeidentification (typically including a TIN), and an amount to pay whichis usually integral to the remittance advice. Payment processor 120requests a virtual payment card 130 from a card issuing authority 140 ina first authorized amount. A virtual payment card is generated 150 andsent with remittance advice, the virtual payment card account number, anexpiration date and a CVV code 160 to payee 170. Virtual payment card isgenerated electronically and not reduced to a physical plastic card.Payee 170 runs first virtual payment card on merchant terminal 180 and anotification data package 190 is received responsive from thetransaction by payment processor 120. Notification data package 190includes alphanumeric data strings retrieved from the payee's merchantcard terminal. The strings (including both alphanumeric and integervalues) may include merchant category code, tax identification number ofpayee, merchant ID of payee and an IP address of the connection made bythe payee's merchant card terminal to the network (e.g., Internet). Thevalues are saved in data store 200.

A second request 115 to make payment to payee 170 for a second claim isreceived by payment processor 120 and a second virtual payment card isrequested for a second amount 135. The second amount should beconsidered temporal relative to the first amount. It is possible thatthe first amount could be equal to the second amount by coincidence.Card issuing authority 140 generates a second virtual payment card 155which is sent with the remittance advice 165 to payee 170. Payee 170processes the second virtual payment card through payee's merchantterminal 180 producing a second data package which is evaluated bypayment processor 120 comparing the values of the second data package tothe transaction records of the first data package 190 in the data store200. Payment processor 120 will direct a decline response in theauthorization process should the values in the second data packagedeviate from the values in the first data package.

By way of example, a merchant category code (MCC) is a four-digit numberassigned to a business by credit card companies (for instance,MASTERCARD, VISA) when the business first starts accepting one of thesecards as a form of payment. For example, an MMC code of 8011 is receivedin the first data package. For VISA merchants, 8011 is assigned to“doctors and physicians.” However, an unscrupulous computer repairman atthe doctor's office intercepts a second virtual payment card andattempts to run it through his personal card terminal (e.g., asmartphone application) so that funds are deposited in his account.However, the MMC code for his card terminal is 7379 which is for“computer maintenance and repair services.” The 8011 MMC value for thepayee is stored in a database table with a primary key index assigned tothe TIN of the payee. The payment processor 120 is directing the secondvirtual payment card to the same payee with the same TIN and thereforethe same 8011 MMC value. However, the second data package 195 containsthe 7379 MMC value which does not match what is expected and the paymentprocessor 120 directs that the second virtual payment card transactionbe declined.

This example is shown in FIG. 2 wherein the first data package 190includes an MMC value of 8011 for payee 170. However, when a secondvirtual card is attempted to be authorized the second data package 195returns an MMC value of 7379 for the merchant terminal 180 attempting toprocess the second virtual card. The 7379 value does not match up withthe 8011 value in the data store 200 and payment processor 120 thereforedirects that an authorization response declining the transaction begenerated 210.

By the same token, additional data values captured in the authorizationprocess such as merchant identification number (MID). A MID is analphanumeric identifier provided by the acquirer uniquely identifyingthe merchant on their system. The MID for a payee should be relativelystatic so if a second virtual card authorization attempt is made by aMID different from the first virtual card authorization for the samepayee then the authorization may be declined as possibly fraudulent.

FIG. 3 is an exemplary table in data store 200 showing columns for a taxidentification integer value, a MID integer value, an MMC integer value,a merchant description string value and an IP address from the lastvalidated connection made by that merchant.

A unique feature of this invention is that the payments between thepayment processor and the payee are repeating and therefore the paymentprocessor has a unique opportunity to capture data on validatedtransactions that can be used to improve security on subsequenttransactions.

Hardware and Software Infrastructure Examples

The present invention may be embodied on various computing platformsthat perform actions responsive to software-based instructions and mostparticularly on touchscreen portable devices. The following provides anantecedent basis for the information technology that may be utilized toenable the invention.

The computer readable medium described in the claims below may be acomputer readable signal medium or a computer readable storage medium. Acomputer readable storage medium may be, for example, but not limitedto, an electronic, magnetic, optical, electromagnetic, infrared, orsemiconductor system, apparatus, or device, or any suitable combinationof the foregoing. More specific examples (a non-exhaustive list) of thecomputer readable storage medium would include the following: anelectrical connection having one or more wires, a portable computerdiskette, a hard disk, a random access memory (RAM), a read-only memory(ROM), an erasable programmable read-only memory (EPROM or Flashmemory), an optical fiber, a portable compact disc read-only memory(CD-ROM), an optical storage device, a magnetic storage device, or anysuitable combination of the foregoing. In the context of this document,a computer readable storage medium may be any non-transitory, tangiblemedium that can contain, or store a program for use by or in connectionwith an instruction execution system, apparatus, or device.

A computer readable signal medium may include a propagated data signalwith computer readable program code embodied therein, for example, inbaseband or as part of a carrier wave. Such a propagated signal may takeany of a variety of forms, including, but not limited to,electro-magnetic, optical, or any suitable combination thereof. Acomputer readable signal medium may be any computer readable medium thatis not a computer readable storage medium and that can communicate,propagate, or transport a program for use by or in connection with aninstruction execution system, apparatus, or device. However, asindicated above, due to circuit statutory subject matter restrictions,claims to this invention as a software product are those embodied in anon-transitory software medium such as a computer hard drive, flash-RAM,optical disk or the like.

Program code embodied on a computer readable medium may be transmittedusing any appropriate medium, including but not limited to wireless,wire-line, optical fiber cable, radio frequency, etc., or any suitablecombination of the foregoing. Computer program code for carrying outoperations for aspects of the present invention may be written in anycombination of one or more programming languages, including an objectoriented programming language such as Java, C #, C++, Visual Basic orthe like and conventional procedural programming languages, such as the“C” programming language or similar programming languages.

Aspects of the present invention are described below with reference toflowchart illustrations and/or block diagrams of methods, apparatus(systems) and computer program products according to embodiments of theinvention. It will be understood that each block of the flowchartillustrations and/or block diagrams, and combinations of blocks in theflowchart illustrations and/or block diagrams, can be implemented bycomputer program instructions. These computer program instructions maybe provided to a processor of a general purpose computer, specialpurpose computer, or other programmable data processing apparatus toproduce a machine, such that the instructions, which execute via theprocessor of the computer or other programmable data processingapparatus, create means for implementing the functions/acts specified inthe flowchart and/or block diagram block or blocks.

These computer program instructions may also be stored in a computerreadable medium that can direct a computer, other programmable dataprocessing apparatus, or other devices to function in a particularmanner, such that the instructions stored in the computer readablemedium produce an article of manufacture including instructions whichimplement the function/act specified in the flowchart and/or blockdiagram block or blocks.

The computer program instructions may also be loaded onto a computer,other programmable data processing apparatus, or other devices to causea series of operational steps to be performed on the computer, otherprogrammable apparatus or other devices to produce a computerimplemented process such that the instructions which execute on thecomputer or other programmable apparatus provide processes forimplementing the functions/acts specified in the flowchart and/or blockdiagram block or blocks.

It should be noted that when referenced, an “end-user” is an operator ofthe software as opposed to a developer or author who modifies theunderlying source code of the software. For security purposes,authentication means identifying the particular user while authorizationdefines what procedures and functions that user is permitted to execute.

Glossary of Claim Terms

Administrator: means an entity reviewing and/or authorizing payments toa payee. By way of example, a third party administrator (TPA)adjudicates health care claims and authorizes (and/or denies) paymentsto the health care provider that submitted the claims.

Authorization Approval Code: is a numerical code assigned to a salestransaction indicating that the sale is authorized.

AVS: is address verification services. AVS uses the billing informationassociated with a card to verify the cardholder's address.

Bank Account Information: information used to identify a specific bankaccount. This information can include routing numbers, account data,account numbers and other information used to identify a bank account.

BIN: is a six-digit Bank Identification Number assigned to eachfederally insured financial institution for the routing of transactionsand other purposes. It is also known as an Issuer Identification Number(IIN) the first digit of which is the Major Industry Identifier (MII).

Card Association: a collective network of both the card network and thebanks that issue cards operable on the network's infrastructure.

Card Network: financial networks that administer the credit and debitcard processing. These networks include those known by the brands VISA,MASTERCARD, AMERICAN EXPRESS, DISCOVER, DINER'S CLUB, and JCB.

Card Verification Code (CVV): is numeric security code that providesextra security against unauthorized use during non-face to facetransactions. CVV codes are three-digit numbers on the back of VISA andMASTERCARD credit and debit cards. The CVV number helps guard againstthe use of data stolen from payment networks by hackers. Intercepteddata will usually comprise the cardholder name, card number and cardexpiration date, but not the CVV, which is generally obtained only byviewing the physical card.

Computer Based Server: a computer hardware system dedicated to runningone or more services. Services can vary from database server, fileserver, mail server, print server, web server, or various other typesservices achieved through a computer program.

Computing Device: a computer hardware system typically connected by awide area or local area network to transmit data, receive data, andstore (either ephemerally or permanently) said data in conjunction withits programming Computing device may also perform business logic,calculations, and present data by various media.

Computing System: means one or more computers communicatively coupledthrough local and/or wide area network connections to performcoordinated tasks directed by software instructions fixed to a tangible,computer-readable medium.

Data Store: is a generic term for an electronic storage device forholding non-volatile memory such as values, tables and the like. Datastores are frequently also known as database that accept commands toinsert, edit, query and delete records.

Digital storage medium: is any data repository able to savenon-transitory information. This is typically or more hard drivesoperable by a relational database.

EDI: Electronic Data Interchange.

EFT: Electronic Funds Transfer.

Electronic Remittance Advice (ERA): Any of several electronic formatsfor explaining the payments of health care claims.

Enhanced Data: Additional data submitted by a merchant through a creditcard network that typically lowers the interchange rate incurred for thetransaction. Enhance data includes sales tax breakdown, customerreferences, merchant order numbers, transportation information, hotelaccommodation information, car rental data, product codes, itemdescriptions, item quantities, item units, discount amounts, shippinginformation and the like. This additional data is known as Level II andLevel II data.

Explanation of benefits (EOB): is a statement typically sent by a healthinsurance entity explaining what medical services were covered under aninsurance policy. An EOB will typically include a summary of theservices performed, the medical provider's fee and the amount a patientis responsible for.

Fax: is short for facsimile. It is a method of sending image data acrossthe standard phone line to another fax machine. It is considered by manyservice providers a relatively secure means of transmitting andreceiving sensitive financial and medical information.

FTP: (file transfer protocol) is an Internet protocol is used to copyfiles between computers—usually a client and an archive site. For thepurposes of this application this includes encrypted variants such asExplicit FTPS, SSH File Transfer Protocol and tunneling a normal FTPsession over an SSH connection.

HTTP: (hypertext transfer protocol) is the protocol used to transmit andreceive all data over the World Wide Web. HTTPS is a secure variant ofHTTP.

IIN: a six-digit Issuer Identification Number (IIN) (also known as the“Bank Identification Number” (BIN)) the first digit of which is theMajor Industry Identifier (MII).

IP Address: is a numerical label assigned to each device (e.g.,computer, printer) participating in a computer network that uses theInternet Protocol for communication.

Issuing Bank: the bank that issues a credit, debit or stored value cardto a consumer. This may be synonymous with the card processor in thecontext of the current claims. This is typically the cardholder'sfinancial institution but in the case of a payment processor, the issuedcards may be that of the processor.

Merchant Card Terminal: a payment terminal, also known as a point ofsale terminal, credit card terminal, EFTPOS terminal, is a device whichinterfaces with payment cards to make electronic funds transfers. Thereare various types of terminals available to merchants, although mosthave the same basic purpose and functions. They allow a merchant toinsert, swipe, or manually enter the required credit card information,to transmit this data to the merchant service provider for authorizationand, finally, to transfer funds to the merchant. Using a personalcomputer (PC) or smartphone with appropriate software and reader device,a merchant can replace the functionality of dedicated credit cardterminal hardware using a terminal application running on a PC orsmartphone. These terminal applications usually also support manualentry of the credit card number.

Notification Data Package: a collection of data values relating to theprocessing a virtual payment card at a merchant card terminal. Thenotification package may be in one or more separate remote communicationtransmissions from the card terminal to the merchant acquirer and thenpassed on to the payment processing computing system.

Payee: is the recipient of the payment card funds. In health care, thismay be the service provider (e.g., physician's office). For automobilewarranties, this may be the mechanic or service department. For travel,the payee may be a hotel, airline or the traveler whose itinerary isoften managed on his or her behalf.

Payor: In health care, an entity that assumes the risk of paying formedical treatments. This can be an uninsured patient, a self-insuredemployer, or a health care plan or HMO. Payor may also be used in otherindustries such as automobile warranty claims and travel services (suchas paying for an employee's hotel room or airline ticket).

Payment Card: refers to any credit card, debit card, stored value cardor the like.

Personal Information: information that can be used to uniquely identify,contact, or locate a single person or can be used with other sources touniquely identify a single individual.

PCI DSS: is an acronym for the payment card industry data securitystandard. PCI DSS is a security standard for organizations that handlecardholder information.

Remittance Advice: is synonymous with an EOB (see above). It is anexplanation of payment (EOP).

Repetitive: occurring more than once.

Service Provider: refers to the entity that provides services to be paidfor. Service providers applicable to the current invention may include,but are not limited to, construction contractors, vehicle repair shops,pharmacies and medical service providers.

SMS: (short message service) is a wireless technology for sending shorttext messages between mobile phones, fax machines, and IP addresses.It's similar to paging, except that the recipient's phone doesn't needto be active; instead, the message is stored.

SMTP: Simple Mail Transfer Protocol is used to send email. The SMTPprotocol provides a common language for different servers to send andreceive email messages. The default TCP/IP port for the SMTP protocol isport 25.

Standard Industrial Classification (SIC) code: is a United Statesgovernment system for classifying industries by a four-digit code. Thisis also known as a Merchant Category Code (MCC).

Storage Device: is an electronic storage medium such as a hard drive,hard drive array, solid state memory, magnetic tape, and optical drives.

Stored Value Card: are those payment cards (in tangible or virtual form)which have a monetary value stored on them. Whereas the prepaid creditcard can only be used with authorization from the cardholder, the storedvalue cards have an anonymous aspect. Examples of stored-value cardsinclude the well-known telephone cards, merchant gift cards, or prepaiddebit cards.

Taxpayer Identification Number (TIN): is an identification number usedby the Internal Revenue Service (IRS) in the administration of tax laws.It is issued either by the Social Security Administration (SSA) or bythe IRS. A Social Security number (SSN) is issued by the SSA whereas allother TINs are issued by the IRS. For the purposes of this disclosure,the TIN may be used to uniquely identify a payee.

Virtual Payment Card: are payment cards that are generatedelectronically and not reduced to a physical plastic card. Virtualpayment cards may be processed by a service provider as a card notpresent (CNP) transaction or the data may be transmitted directly to thecard acquirer for the service provider which in such case the CNPdesignation may or may not be included.

The advantages set forth above, and those made apparent from theforegoing description, are efficiently attained. Since certain changesmay be made in the above construction without departing from the scopeof the invention, it is intended that all matters contained in theforegoing description or shown in the accompanying drawings shall beinterpreted as illustrative and not in a limiting sense.

What is claimed is:
 1. A virtual payment card processing system forfraud prevention in repetitive virtual payment card transactions to apayee from a payor, comprising: a payment processor computing systemconfigured to execute the steps comprising: responsive to receiving afirst instruction to pay a first authorized amount to a payee,establishing a first network connection to a card issuing application;electronically requesting over the first network connection a firstvirtual payment card in an amount equal to the first authorized amount,wherein the first virtual payment card is sent to the payee;establishing a second network connection with a payment card terminal ofthe payee, the payment card terminal configured to process the firstvirtual payment card; responsive to the payee initiating a validatedvirtual card payment transaction to process the first virtual paymentcard, obtaining a first set of transaction parameters from the paymentcard terminal, wherein the transaction parameters are selected from thegroup comprising of an Internet Protocol (IP) address of the paymentcard terminal, a Merchant Category Code (MMC), a Merchant Identification(MID) of the payment card terminal, and a Tax Identification Number(TIN) of the payee; responsive to receiving a second instruction to paya second authorized amount to the payee, electronically requesting overthe first network connection a second virtual payment card in an amountequal to the second authorized amount, wherein the card issuingapplication sends the second virtual payment card to the payee;responsive to the payee initiating a second virtual card paymenttransaction to process the second virtual payment card, obtaining asecond set of transaction parameters from the payment card terminal usedto initiate the second virtual card payment; responsive to identifying adiscrepancy between the second set of transaction parameters and thefirst set of transaction parameters, notifying the payor of thediscrepancy.
 2. The system of claim 1, wherein the second virtual cardpayment transaction is authorized responsive to a match between thefirst and the second sets of transaction parameters pertaining to theTIN of the payee.
 3. The system of claim 1, wherein the second virtualcard payment transaction is authorized responsive to a match between thefirst and the second sets of transaction parameters pertaining to theMCC of the payment card terminal of the payee.
 4. The system of claim 1,wherein the second virtual card payment transaction is authorizedresponsive to a match between the first and the second sets oftransaction parameters pertaining to the merchant ID of the payment cardterminal of the payee.
 5. The system of claim 1, wherein the secondvirtual card payment transaction is authorized responsive to a matchbetween the first and the second sets of transaction parameterspertaining to the IP address of the payment card terminal of the payee.6. The system of claim 1, wherein the first set of transactionparameters and the second set of transaction parameters are obtainedfrom a payment acquirer.
 7. A computer-implemented method of frauddetection for repetitive virtual payment card transactions to a payeefrom a payor, the method comprising the steps of: establishing a firstnetwork connection to a card issuing application; electronicallyrequesting over the first network connection a first virtual paymentcard in an amount equal to first authorized amount; electronicallysending the first virtual payment card to the payee; establishing asecond network connection with a payment card terminal of the payee, thepayment card terminal configured to process the first virtual paymentcard; responsive to the payee initiating a transaction to process thefirst virtual payment card, obtaining a first set of transactionparameters from the payment card terminal; electronically requestingover the first network connection a second virtual payment card in anamount equal to a second authorized amount and sending the secondvirtual payment card to the payee; responsive to the payee initiating asecond transaction to process the second virtual payment card, obtaininga second set of transaction parameters from the payment card terminalused to initiate the second virtual card payment; responsive toidentifying a discrepancy between the second set of transactionparameters and the first set of transaction parameters, declining thesecond virtual card payment transaction.
 8. The system of claim 7,wherein the second virtual card payment transaction is authorizedresponsive to a match between the first and the second sets oftransaction parameters pertaining to a TIN of the payee.
 9. The systemof claim 7, wherein the second virtual card payment transaction isauthorized responsive to a match between the first and the second setsof transaction parameters pertaining to an MCC of the payment cardterminal of the payee.
 10. The system of claim 7, wherein the secondvirtual card payment transaction is authorized responsive to a matchbetween the first and the second sets of transaction parameterspertaining to a merchant ID of the payment card terminal of the payee.11. The system of claim 7, wherein the second virtual card paymenttransaction is authorized responsive to a match between the first andthe second sets of transaction parameters pertaining to an IP address ofthe payment card terminal of the payee.
 12. The system of claim 7,wherein the first set of transaction parameters and the second set oftransaction parameters are obtained from a payment acquirer.
 13. Acomputer-implemented method of fraud detection for repetitive virtualpayment card transactions to a payee from a payor, the method comprisingthe steps of: establishing a first network connection to a card issuingapplication; electronically requesting over the first network connectiona first virtual payment card in an amount equal to first authorizedamount; electronically sending the first virtual payment card to thepayee; establishing a second network connection with a payment cardterminal of the payee, the payment card terminal configured to processthe first virtual payment card; responsive to the payee initiating apayment transaction to process the first virtual payment card, obtaininga first set of transaction parameters from the payment card terminal;responsive to receiving a second instruction to pay a second authorizedamount to the payee, electronically requesting over the first networkconnection a second virtual payment card in an amount equal to secondauthorized amount and sending the second virtual payment card to thepayee; responsive to the payee initiating a second payment transactionto process the second virtual payment card, obtaining a second set oftransaction parameters from the payment card terminal used to initiatethe second virtual card payment; responsive to identifying a discrepancybetween the second set of transaction parameters and the first set oftransaction parameters, notifying the payor of the discrepancy.
 14. Thesystem of claim 13, wherein the second virtual card payment transactionis authorized responsive to a match between the first and the secondsets of transaction parameters pertaining to a TIN of the payee.
 15. Thesystem of claim 13, wherein the second virtual card payment transactionis authorized responsive to a match between the first and the secondsets of transaction parameters pertaining to an MCC of the payment cardterminal of the payee.
 16. The system of claim 13, wherein the secondvirtual card payment transaction is authorized responsive to a matchbetween the first and the second sets of transaction parameterspertaining to a merchant ID of the payment card terminal of the payee.17. The system of claim 13, wherein the second virtual card paymenttransaction is authorized responsive to a match between the first andthe second sets of transaction parameters pertaining to an IP address ofthe payment card terminal of the payee.
 18. The system of claim 13,wherein the first set of transaction parameters and the second set oftransaction parameters are obtained from a payment acquirer.